Constrained Application Protocol: Difference between revisions

Browse history interactively

← Previous edit

Content deleted Content added

VisualWikitext

Revision as of 21:33, 3 January 2025 edit Cullen328 (talk \| contribs) Autopatrolled, Administrators 116,886 edits Revert promotional edit by COI account. Undid revision 1267155078 by Netcoap (talk) Tag: Undo ← Previous edit		Latest revision as of 02:51, 27 June 2025 edit undo Headbomb (talk \| contribs) Edit filter managers, Autopatrolled, Extended confirmed users, Page movers, File movers, New page reviewers, Pending changes reviewers, Rollbackers, Template editors 473,402 edits ce
(12 intermediate revisions by 5 users not shown)
Line 2: {{IP stack}} '''Constrained Application Protocol''' ('''CoAP''') is a specialized [[User Datagram Protocol\|UDP-based]] Internet application protocol for constrained devices, as defined in [https://datatracker.ietf.org/doc/html/rfc7252 RFC 7252] (published in 2014). It enables those constrained devices called "nodes" to communicate with the wider Internet using similar protocols. CoAP is designed for use between devices on the same constrained network (e.g., low-power, lossy networks), between devices and general nodes on the Internet, and between devices on different constrained networks both joined by an internet. CoAP is also being used via other mechanisms, such as SMS on mobile communication networks. Line 41: \|} === CoAP ~~Fixed~~fixed-~~Size~~size ~~Header~~header === The first 4 bytes are mandatory in all CoAP datagrams, they constitute the fixed-size header. These fields can be extracted from these 4 bytes in C via these macros: <syntaxhighlight lang="c"> #define COAP_HEADER_VERSION(data) ( (0xC0 & (data)[0]) >> 6 ) #define COAP_HEADER_TYPE(data) ( (0x30 & (data)[0]) >> 4 ) Line 151 ⟶ 152: Every request carries a token (but it may be zero length) whose value was generated by the client. The server must echo every token value without any modification back to the client in the corresponding response. It is intended for use as a client-local identifier to match requests and responses, especially for concurrent requests. Matching requests and responses is not done with the message ID because a response may be sent in a different message than the acknowledgement (which uses the message ID for matching). For example, this could be done to prevent retransmissions if obtaining the result takes some time. Such a detached response is called "separate response". In contrast, transmitting the response directly in the acknowledgement is called "piggybacked response" which is expected to be preferred for efficiency reasons. === Option === Line 178 ⟶ 179: Option delta: * 0 to 12: For delta between 0 toand 12: Represents the exact delta value between the last option ID and the desired option ID, with no option delta extended value * 13: For delta from 13 to 268: Option delta extended is an 8-bit value that represents the option delta value minus 13 * 14: For delta from 269 to 65,804: Option delta extended is a 16-bit value that represents the option delta value minus 269 Line 185 ⟶ 186: Option length: * 0 to 12: For option length between 0 toand 12: Represents the exact length value, with no option length extended value * 13: For option length from 13 to 268: Option length extended is an 8-bit value that represents the option length value minus 13 * 14: For option length from 269 to 65,804: Option length extended is a 16-bit value that represents the option length value minus 269 * 15: Reserved for future use. It is an error for the option length field to be set to 0xFF. Option value: Line 195 ⟶ 196: * Semantic and format this field depends on the respective option. ==~~Proxy~~Active protocol implementations==▼ ~~==Implementations==~~ {\| class="wikitable sortable" \|- Line 202 ⟶ 203: \| coap \|\| Dart \|\| RFC 7252\|\| Client \|\| Blockwise Transfers, Observe, Multicast, Proxying (partial) \|\| MIT \|\| https://github.com/shamblett/coap \|- \| aiocoap \|\| Python 3 \|\| RFC 7252, RFC 7641, RFC 7959, RFC 8323, RFC 7967, RFC 8132, RFC 9176, RFC 8613, RFC 9528\|\| Client + Server \|\| Blockwise Transfers, Observe (partial) \|\| MIT \|\| {{URL\|https://pypi.python.org/pypi/aiocoap}} \|- \| Californium \|\| Java \|\| RFC 7252, RFC 7641, RFC 7959\|\| Client + Server \|\| Observe, Blockwise Transfers, Multicast (since 2.x), DTLS (+ DTLS 1.2 Connection ID) \|\| EPL+EDL \|\| {{URL\|https://www.eclipse.org/californium}} {{URL\|https://github.com/eclipse/californium}} \|- \| ~~cantcoap~~CoAPSharp \|\| C~~++/C~~#, .NET \|\| RFC 7252\|\| Client + Server \|\| Core, Observe, Block, RD \|\| ~~BSD~~MIT \|\| {{URL\|http://www.coapsharp.com https://github.com/~~staropram~~FemtomaxInc/~~cantcoap~~coapsharp}} \|- \| ~~Canopus~~FreeCoAP \|\| ~~[[Go (programming language)\|Go]]~~C \|\| RFC 7252\|\| Client + Server \|\|+ ~~Core~~HTTP/CoAP Proxy \|\|Core, ~~Apache~~DTLS, ~~License~~Blockwise ~~2.0~~Transfers \|\| BSD \|\| {{URL\|https://github.com/~~zubairhamed~~keith-cullen/~~canopus~~FreeCoAP}} \|- \| Go-CoAP \|\| [[Go (programming language)\|Go]] \|\| RFC 7252, RFC 8232, RFC 7641, RFC 7959\|\| Client + Server \|\| Core, Observe, Blockwise, Multicast, TCP/TLS \|\| Apache License 2.0 \|\| {{URL\|https://github.com/plgd-dev/go-coap}} \|- \| ~~CoAP~~java-coap ~~implementation for~~\|\| GoJava \|\| RFC ~~[[Go~~7252, ~~(programming~~RFC ~~language)\|Go]]~~7641, \|\|RFC 7959, RFC ~~7252~~8323\|\| Client + Server \|\| ~~Core + Draft Subscribe~~ \|\| ~~MIT~~Apache License 2.0 \|\| {{URL\|https://github.com/~~dustin~~PelionIoT/gojava-coap}} \|- \| ~~CoAP.NET~~libcoap \|\| C# \|\| RFC 7252, ~~coap-13~~RFC 7390, ~~coap-08~~RFC 7641, ~~coap-03~~RFC 7959, RFC 7967, RFC 8132, RFC 8323, RFC 8516, RFC 8613, RFC 8768, RFC 8974, RFC 9175, RFC 9177\|\| Client + Server \|\| Core, Observe, Multicast, Blockwise Transfers, Patch/Fetch, OSCORE, (D)TLS \|\| ~~3-clause~~ BSD/GPL \|\| https://github.com/~~smeshlink~~obgm/~~CoAP.NET~~libcoap \|- \|libcoapy \| CoAPSharp \|\| C#, .NET \|\| RFC 7252\|\| Client + Server \|\| Core, Observe, Block, RD \|\| LGPL \|\| http://www.coapsharp.com▼ \|Python \| colspan="3" \|same support as libcoap \|MIT \|{{URL\|https://github.com/anyc/libcoapy}} \|- \| ~~CoAPthon~~lobaro-coap \|\| ~~Python~~C \|\| RFC 7252\|\| Client + Server ~~+ Forward Proxy + Reverse Proxy~~ \|\| Observe, ~~Multicast~~Blockwise ~~server discovery, CoRE Link Format parsing, Block-wise~~Transfers \|\| MIT \|\| ~~https~~{{URL\|http://~~github~~www.lobaro.com/~~Tanganelli/CoAPthon~~lobaro-coap}} \|- \| ~~CoAP Shell~~microCoAPy \|\| ~~Java~~MicroPython \|\| RFC 7252\|\| Client + Server \|\| ~~Observe, Blockwise Transfers, DTLS~~Core \|\| Apache License 2.0 \|\| {{URL\|https://github.com/~~tzolov~~insighio/~~coap-shell~~ microCoAPy}} \|- \| ~~Copper~~nanoCoAP \|\| ~~JavaScript (Browser Plugin)~~C \|\| RFC 7252\|\| Client + Server \|\| ~~Observe~~Core, Blockwise Transfers, DTLS \|\| ~~3-clause BSD~~LGPL \|\| {{URL\|https://~~github~~api.~~com/mkovatsc/Copper https://addons.mozilla~~riot-os.org/~~firefox/addon/copper-270430/{{Dead link\|date=July 2019 \|bot=InternetArchiveBot \|fix-attempted=yes~~ group__net__nanocoap.html}} \|- \| node-coap \|\| ~~Javascript~~JavaScript \|\| RFC 7252,▼ \| eCoAP \|\| C \|\| RFC 7252\|\| Client + Server \|\| Core \|\| MIT \|\| https://gitlab.com/jobol/ecoap▼ RFC 7641, RFC 7959▼ \| Client + Server \|\| Core, Observe, Block \|\| MIT \|\| {{URL\|https://github.com/mcollina/node-coap}}▼ \|- \| ~~Erbium~~Qt ~~for Contiki~~CoAP \|\| C++ \|\| RFC 7252\|\| Client ~~+ Server~~ \|\| Core, Observe, Blockwise Transfers \|\| ~~3-clause~~GPL, ~~BSD~~Commercial \|\| ~~http~~https://~~www~~doc.~~contiki-os~~qt.~~org~~io/ ~~(er~~qt-~~rest~~6/qtcoap-~~example)~~index.html \|- \| ~~FreeCoAP~~coap-rs \|\| CRust \|\| RFC 7252\|\| Client + Server ~~+ HTTP/CoAP Proxy~~ \|\| Core, ~~DTLS~~Multicast, ~~Blockwise~~Observe ~~Transfers~~option, ''Too Many Requests'' Response Code \|\| ~~BSD~~MIT \|\| {{URL\|https://github.com/~~keith-cullen~~Covertness/~~FreeCoAP~~coap-rs}} {{URL\|https://docs.rs/coap/}}▼ \|- \|-}▼ \| guile-coap \|\| Guile \|\| RFC 7252, RFC 8323 \|\| Client + Server \|\| \|\| GPL-3.0-or-later \|\| https://codeberg.org/eris/guile-coap▼ ==Proxy implementations== There exist [[Proxy server\|proxy]] implementations which provide [[Forward proxy\|forward]] or [[Reverse proxy\|reverse]] proxy functionality for the CoAP protocol and also implementations which translate between protocols like HTTP and CoAP. The following projects provide proxy functionality: * [http://telecom.dei.unipd.it/pages/read/90/ Squid 3.1.9 with transparent HTTP-CoAP mapping module]▼ * [https://code.google.com/p/jcoap/ jcoap Proxy]▼ * [https://github.com/eclipse/californium/tree/master/californium-proxy2 Californium cf-proxy2]▼ * [https://github.com/Tanganelli/CoAPthon CoAPthon]▼ * [https://github.com/keith-cullen/FreeCoAP FreeCoAP]▼ * [https://github.com/obgm/libcoap libcoap] ==Projects using CoAP== {\| class="wikitable sortable" \|- ! Name !! Programming Language !! Implemented CoAP version !! Client/Server !! Implemented CoAP features !! License !! Link \| iCoAP \|\| Objective-C \|\| RFC 7252\|\| Client \|\| Core, Observe, Blockwise Transfers \|\| MIT \|\| https://github.com/stuffrabbit/iCoAP▼ \|- \| ~~java-coap~~CoAP Shell \|\| Java \|\| RFC 7252,\|\| ~~RFC 7641, RFC 7959, RFC~~Client ~~8323~~\|\| ~~Client~~Observe, +Blockwise ~~Server \|\|~~Transfers, DTLS \|\| Apache License 2.0 \|\| https://github.com/~~PelionIoT~~tzolov/~~java-~~coap-shell \|- \| ~~jCoAP~~Copper \|\| ~~Java~~JavaScript (browser plugin) \|\| RFC 7252\|\| Client ~~+ Server~~ \|\| Observe, Blockwise Transfers \|\| ~~Apache~~3-clause ~~License 2.0~~BSD \|\| https://~~code.google~~github.com/pmkovatsc/~~jcoap~~Copper https://addons.mozilla.org/firefox/addon/copper-270430/{{Dead link\|date=July 2019 \|bot=InternetArchiveBot \|fix-attempted=yes }} \|- \|} \| libcoap \|\| C \|\| RFC 7252, RFC 7390, RFC 7641, RFC 7959, RFC 7967, RFC 8132, RFC 8323, RFC 8516, RFC 8613, RFC 8768, RFC 8974, RFC 9175, RFC 9177\|\| Client + Server \|\|Core, Observe, Multicast, Blockwise Transfers, Patch/Fetch, OSCORE, DTLS \|\| BSD/GPL \|\| https://github.com/obgm/libcoap ==Inactive protocol implementations== {\| class="wikitable sortable" \|- ! Name !! Programming Language !! Implemented CoAP version !! Client/Server !! Implemented CoAP features !! License !! Link \| LibNyoci \|\| C \|\| RFC 7252\|\| Client + Server \|\| Core, Observe, Block, DTLS \|\| MIT \|\| https://github.com/darconeous/libnyoci▼ \|- \| ~~lobaro-coap~~cantcoap \|\| C++/C \|\| RFC 7252\|\| Client + Server \|\|~~Observe,~~ ~~Blockwise Transfers~~ \|\| ~~MIT~~BSD \|\| ~~http~~https://~~www.lobaro~~github.com/~~lobaro-coap~~staropram/cantcoap \|- \| ~~microcoap~~Canopus \|\| C[[Go (programming language)\|Go]] \|\| RFC 7252\|\| Client + Server \|\| Core \|\| ~~MIT~~Apache License 2.0 \|\| https://github.com/~~1248~~zubairhamed/~~microcoap~~canopus \|- \| ~~microCoAPy~~CoAP implementation for Go \|\| ~~MicroPython~~[[Go (programming language)\|Go]] \|\| RFC 7252\|\| Client + Server \|\| Core \|\|+ ~~Apache~~Draft ~~License~~Subscribe ~~2.0~~\|\| MIT \|\| https://github.com/~~insighio~~dustin/~~microCoAPy~~go-coap \|- \| ~~nanoCoAP~~CoAP.NET \|\| C# \|\| RFC 7252, coap-13, coap-08, coap-03 \|\| Client + Server \|\| Core, Observe, Blockwise Transfers~~, DTLS~~ \|\| ~~LGPL~~3-clause BSD \|\| https://~~api~~github.~~riot-os.org~~com/smeshlink/~~group__net__nanocoap~~CoAP.~~html~~NET \|- \| ~~nCoap~~CoAPthon \|\| ~~Java~~Python \|\| RFC 7252\|\| Client + Server + Forward Proxy + Reverse Proxy \|\| Observe, ~~Blockwise~~Multicast ~~Transfers~~server discovery, CoRE Link Format parsing, ~~[https://tools.ietf.org/html/draft-kleine-core-coap-endpoint-id-01 Endpoint-ID~~Block-~~Draft]~~wise \|\| ~~BSD~~MIT \|\| https://github.com/~~okleine~~Tanganelli/~~nCoAP~~CoAPthon \|- ▲\| eCoAP \|\| C \|\| RFC 7252\|\| Client + Server \|\| Core \|\| MIT \|\| https://gitlab.com/jobol/ecoap ▲\| node-coap \|\| Javascript \|\| RFC 7252, ▲RFC 7641, RFC 7959 ▲\| Client + Server \|\| Core, Observe, Block \|\| MIT \|\| https://github.com/mcollina/node-coap \|- \| QtErbium ~~CoAP~~for Contiki \|\| C++ \|\| RFC 7252\|\| Client + Server \|\| ~~Core,~~ Observe, Blockwise Transfers \|\| ~~GPL,~~3-clause ~~Commercial~~BSD \|\| ~~https~~http://~~doc~~www.qtcontiki-os.ioorg/qt (er-~~6/qtcoap~~rest-~~index.html~~example) \|- ▲\| guile-coap \|\| Guile \|\| RFC 7252, RFC 8323 \|\| Client + Server \|\| \|\| GPL-3.0-or-later \|\| https://codeberg.org/eris/guile-coap \|- ▲\| iCoAP \|\| Objective-C \|\| RFC 7252\|\| Client \|\| Core, Observe, Blockwise Transfers \|\| MIT \|\| https://github.com/stuffrabbit/iCoAP \|- \| jCoAP \|\| Java \|\| RFC 7252\|\| Client + Server \|\| Observe, Blockwise Transfers \|\| Apache License 2.0 \|\| https://code.google.com/p/jcoap/ \|- ▲\| ~~CoAPSharp~~LibNyoci \|\| C~~#, .NET~~ \|\| RFC 7252\|\| Client + Server \|\| Core, Observe, Block, RDDTLS \|\| ~~LGPL~~MIT \|\| ~~http~~https://~~www.coapsharp~~github.com/darconeous/libnyoci \|- ▲\| ~~LibNyoci~~microcoap \|\| C \|\| RFC 7252\|\| Client + Server \|\| ~~Core, Observe, Block, DTLS~~ \|\| MIT \|\| https://github.com/~~darconeous~~1248/~~libnyoci~~microcoap \|- \| nCoap \|\| Java \|\| RFC 7252\|\| Client + Server \|\| Observe, Blockwise Transfers, CoRE Link Format, [https://tools.ietf.org/html/draft-kleine-core-coap-endpoint-id-01 Endpoint-ID-Draft] \|\| BSD \|\| https://github.com/okleine/nCoAP \|- \| Ruby coap \|\| Ruby \|\| RFC 7252\|\| Client + Server (david) \|\| Core, Observe, Block, RD \|\| MIT, GPL \|\| https://github.com/nning/coap<br/>https://github.com/nning/david Line 271 ⟶ 306: \|- \| txThings \|\| Python (Twisted) \|\| RFC 7252\|\| Client + Server \|\| Blockwise Transfers, Observe (partial) \|\| MIT \|\| https://github.com/mwasilak/txThings/ ▲\|- ~~\| coap-rs \|\| Rust \|\| RFC 7252\|\| Client + Server \|\| Core, Multicast, Observe option, ''Too Many Requests'' Response Code \|\| MIT \|\| https://github.com/Covertness/coap-rs~~ ▲https://docs.rs/coap/ \|- \| YaCoAP \|\| C \|\| \|\| \|\| \|\| MIT \|\| https://github.com/RIOT-Makers/YaCoAP \|- \|} ▲==Proxy implementations== ▲* [http://telecom.dei.unipd.it/pages/read/90/ Squid 3.1.9 with transparent HTTP-CoAP mapping module] ▲* [https://code.google.com/p/jcoap/ jcoap Proxy] ▲* [https://github.com/eclipse/californium/tree/master/californium-proxy2 Californium cf-proxy2] ▲* [https://github.com/Tanganelli/CoAPthon CoAPthon] ▲* [https://github.com/keith-cullen/FreeCoAP FreeCoAP] ==CoAP group communication== Line 297 ⟶ 322: == Security == CoAP defines four security modes:<ref> [https://tools.ietf.org/html/rfc7252 RFC 7252, Constrained Application Protocol (CoAP)]</ref> * NoSec, where [[DTLS]] is disabled * PreSharedKey, where DTLS is enabled, there is a list of pre-shared keys, and each key includes a list of which nodes it can be used to communicate with. Devices must support the AES cipher suite. Line 303 ⟶ 328: * Certificate, where DTLS is enabled and the device uses [[X.509]] certificates for validation. Research has been conducted on optimizing DTLS by implementing security associates as CoAP resources rather than using DTLS as a security wrapper for CoAP traffic. This research has indicated that improvements of up to 6.5 times none optimized implementations. <ref name="Security as a CoAP resource: An optimized DTLS implementation for the IoT">{{cite book \|last1=Capossele \|first1=Angelo \|last2=Cervo \|first2=Valerio \|last3=De Cicco \|first3=Gianluca \|last4=Petrioli \|first4=Chiara\|title=2015 IEEE International Conference on Communications (ICC) \|chapter=Security as a CoAP resource: An optimized DTLS implementation for the IoT \|author4-link= Chiara Petrioli \|date=June 2015 \|~~journal~~publisher=IEEE \|pages=529–554 \|doi= 10.1109/ICC.2015.7248379\|isbn=978-1-4673-6432-4 \|s2cid=12568959 }}</ref> In addition to DTLS, RFC8613<ref>{{Cite journal\|last1=Palombini\|first1=Francesca\|last2=Seitz\|first2=Ludwig\|last3=Selander\|first3=Goeran\|last4=Mattsson\|first4=John\|title=Object Security for Constrained RESTful Environments (OSCORE)\|url=https://tools.ietf.org/html/rfc8613.html\|access-date=2021-05-07\|website=tools.ietf.org\|year=2019 \|doi=10.17487/RFC8613 \|s2cid=58380874 \|language=en}}</ref> defines the Object Security for Constrained RESTful Environments ([[OSCORE]]) protocol which provides security for CoAP at the application layer.